Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: z9GkE8ZanKGFZ6wvQj8TJ+DyBYp5F7/4dYv2NigXFsY=
Subject key identifier: E8:08:C6:49:42:3C:94:A9:33:CF:92:71:0B:B0:F0:E9:E4:B5:D0:B3
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 01976C2AE0C3FFB8936A06A6140C5EC9667B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0D89
Signing time: Sat 14 Jun 2025 02:00:38 +0000
Manifest this update: Sat 14 Jun 2025 02:00:38 +0000
Manifest next update: Sun 15 Jun 2025 02:00:38 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: jKfTZAVl9ko935rO9v2zfG8cPTbKAKjhOfCKmdIv0I4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:e0:c3:ff:b8:93:6a:06:a6:14:0c:5e:c9:66:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jun 14 02:00:38 2025 GMT
Not After : Jun 15 02:00:38 2025 GMT
Subject: CN=e808c649423c94a933cf92710bb0f0e9e4b5d0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:e2:66:e5:e3:4a:c9:32:53:44:c1:ce:15:
88:fa:96:95:eb:2f:ed:8f:8d:03:0e:f7:70:42:59:
cc:66:c4:c7:96:97:a4:b8:94:af:29:11:8c:c5:09:
9a:fc:59:42:3b:53:da:79:99:6c:4f:c7:03:c9:31:
bf:76:80:cd:63:a6:95:b8:73:5d:ea:64:2b:94:da:
67:a6:42:0a:e8:87:2f:14:d1:63:00:84:ed:34:e7:
97:81:42:70:1f:33:ef:b1:29:92:30:72:bf:b2:eb:
cb:d0:7b:05:e1:8f:cd:82:da:d6:b1:7f:03:d0:c6:
a5:9b:f3:eb:fd:c7:85:99:78:76:4a:f7:05:fe:dc:
e5:d8:25:6e:9b:13:bd:10:9e:4b:83:27:3a:63:ed:
b3:57:41:8d:fa:c9:df:a7:8c:2d:66:a7:34:41:a9:
5f:5e:76:55:74:a9:71:2c:b0:b2:ca:57:71:b7:f7:
1c:66:39:a0:7e:b7:fd:93:40:d2:ef:7f:c1:49:f0:
a9:c2:90:b7:e7:14:c2:bf:a1:65:b6:e3:5f:42:4a:
bb:84:86:e1:27:53:1b:10:58:f4:95:2a:18:44:11:
15:4d:89:b3:80:0d:dc:06:03:80:a1:d2:c0:f6:d6:
3c:d5:db:23:5a:7c:21:dc:47:4e:a2:db:b1:5e:41:
44:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:08:C6:49:42:3C:94:A9:33:CF:92:71:0B:B0:F0:E9:E4:B5:D0:B3
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:2f:52:5a:b8:94:2c:54:ca:10:e7:3a:2e:f2:f2:67:15:7a:
1c:c7:f9:12:6c:24:7d:fc:9f:fe:16:13:84:50:7c:a5:de:14:
a8:42:4f:1d:33:da:a2:20:c3:9a:89:b1:39:b6:e6:a3:bb:ed:
5d:de:cc:a5:68:48:a7:48:00:a4:0f:7e:50:a3:13:ab:3c:41:
cb:1c:d7:d3:de:da:e2:24:b8:8e:fe:d4:8c:01:be:f1:95:ef:
d1:00:68:ca:82:00:84:99:f2:f8:56:1c:b7:27:cb:ea:9e:eb:
fd:ad:14:00:1c:71:e8:e4:b5:e9:31:dd:c1:4c:f0:fe:19:4f:
15:ed:3a:18:69:14:39:78:46:da:5c:c6:12:ad:fb:26:b0:55:
e6:22:a3:16:11:57:16:eb:6b:a8:ff:fb:c9:02:f3:7b:2f:04:
c2:29:e8:32:6b:42:c8:2b:cc:5a:16:40:93:b9:d3:09:97:cd:
23:57:06:32:eb:45:9d:f3:ff:e0:41:58:6c:ad:f0:4c:ba:c3:
d6:0e:dd:17:17:a1:14:95:8e:9d:94:0b:8c:a3:c8:46:56:b5:
3f:c6:82:a5:ac:9f:6d:94:c2:e5:04:8d:e0:7b:9b:46:ab:c6:
9d:43:c0:36:f9:cf:60:eb:1c:bf:be:35:74:d0:e7:f6:43:14:
68:1d:43:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKuDD/7iTagamFAxeyWZ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjUwNjE0MDIwMDM4WhcNMjUwNjE1MDIwMDM4WjAzMTEwLwYDVQQD
EyhlODA4YzY0OTQyM2M5NGE5MzNjZjkyNzEwYmIwZjBlOWU0YjVkMGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyPiZuXjSskyU0TBzhWI+paV6y/t
j40DDvdwQlnMZsTHlpekuJSvKRGMxQma/FlCO1PaeZlsT8cDyTG/doDNY6aVuHNd
6mQrlNpnpkIK6IcvFNFjAITtNOeXgUJwHzPvsSmSMHK/suvL0HsF4Y/NgtrWsX8D
0Malm/Pr/ceFmXh2SvcF/tzl2CVumxO9EJ5Lgyc6Y+2zV0GN+snfp4wtZqc0Qalf
XnZVdKlxLLCyyldxt/ccZjmgfrf9k0DS73/BSfCpwpC35xTCv6FltuNfQkq7hIbh
J1MbEFj0lSoYRBEVTYmzgA3cBgOAodLA9tY81dsjWnwh3EdOotuxXkFEjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOgIxklCPJSpM8+ScQuw8OnktdCzMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJi9SWriU
LFTKEOc6LvLyZxV6HMf5Emwkffyf/hYThFB8pd4UqEJPHTPaoiDDmomxObbmo7vt
Xd7MpWhIp0gApA9+UKMTqzxByxzX097a4iS4jv7UjAG+8ZXv0QBoyoIAhJny+FYc
tyfL6p7r/a0UABxx6OS16THdwUzw/hlPFe06GGkUOXhG2lzGEq37JrBV5iKjFhFX
FutrqP/7yQLzey8EwinoMmtCyCvMWhZAk7nTCZfNI1cGMutFnfP/4EFYbK3wTLrD
1g7dFxehFJWOnZQLjKPIRla1P8aCpayfbZTC5QSN4HubRqvGnUPANvnPYOscv741
dNDn9kMUaB1DHA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:48:21 2025 by rpki-client